[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

ipchains

To: Linux Users Club of IL <luci-discuss@luci.org>
Subject: ipchains
From: Charles Menzes <charles@lunarmedia.net>
Date: Tue, 11 Apr 2000 07:09:17 -0500 (CDT)
cc: Chicago Linux Users Group <clug@null.pharm.uic.edu>
Organization: Linux Users of Central Illinois
Reply-To: luci-discuss@luci.org
Sender: owner-luci-discuss@luci.org


I just recently finished setting up ipchains on both a test server as well
as my home machine. I would like to get fairly strict for the server
platform, which should not be very difficult, however for home use I have
a question about what implications there would be by allowing free range
in and out for ports above 1024. I am running X, so I did add a deny for
any incoming packets to 6000:6063, but other than that, its pretty much
free game. I am not running nfs, however I do run gnapster and icqnix
which all use high ports for establishing sessions both as a client and
server. I could set up specific rulesets for each of these apps, but I was
curious to hear opinion on what ramifications there are from just allowing
ACCEPT in/out for >1024.

cjm


--
To unsubscribe, send email to majordomo@luci.org with
"unsubscribe luci-discuss" in the body.

Follow-Ups:
- Re: ipchains
  - From: Cloudmaster <sauer@cloudmaster.com>

Prev by Date: Re: Debian and Slackware
Next by Date: Re: ipchains
Prev by thread: sstrip?
Next by thread: Re: ipchains
Index(es):
- Date
- Thread